I was previously using Ubuntu 20.04 with OpenVPN 2.8.7
1) I installed it successfully, and it directed me to https://10.0.1.86:943/
* This works fine; however the normal https://10.0.1.86/ url should work and redirect via daemon
* The settings are the same as my 2.8.7 install (443TCP/1194UDP and web-ui on 943TCP), and are the defaults
* Nothing in logs points to the daemon failing (there's 8 daemons and they all start fine).
* going to https://10.0.1.86 gives me a ERR_CONNECTION_REFUSED
2) I tried connecting using the .ovpn profile connected. It seems like 1194 are failing to connect on the client side.
3) I was able to get the client connection working by forcing it to use TCP 443, with webui on 943 and no forwarding. This is obviously unideal since UDP is better. In this case everything works fine albiet through 443
I had a known working setup using 2.8.7 and as far as i can tell the configuration is the same. It appears that the "forwarding" functionality of TCP:443 isn't working, and something is up with 1194UDP for the actual VPN access.
let me know if there's any commands i can run to help diagnose this or if your team has noticed this same thing
{
"admin_ui.https.ip_address": "all",
"admin_ui.https.port": "943",
"aui.eula_version": "3",
"auth.ldap.0.name": "My LDAP servers",
"auth.ldap.0.ssl_verify": "internal",
"auth.ldap.0.timeout": "4",
"auth.ldap.0.use_ssl": "never",
"auth.ldap.0.user_exists_check": "true",
"auth.local.0.enable": "true",
"auth.module.type": "local",
"auth.pam.0.service": "openvpnas",
"auth.radius.0.acct_enable": "false",
"auth.radius.0.name": "My Radius servers",
"cs.admin_only": "false",
"cs.cws_proto_v2": "true",
"cs.cws_ui_offer.android": "false",
"cs.cws_ui_offer.autologin": "true",
"cs.cws_ui_offer.ios": "false",
"cs.cws_ui_offer.linux": "false",
"cs.cws_ui_offer.mac": "false",
"cs.cws_ui_offer.mac_v3": "false",
"cs.cws_ui_offer.server_locked": "false",
"cs.cws_ui_offer.user_locked": "true",
"cs.cws_ui_offer.win": "false",
"cs.cws_ui_offer.win_v3": "true",
"cs.https.ip_address": "all",
"cs.https.port": "943",
"cs.prof_sign_web": "true",
"cs.tls_version_min": "1.2",
"host.name": "redacted.com",
"sa.compression_warning_shown": "displayed",
"sa.initial_run_groups.0": "web_group",
"sa.initial_run_groups.1": "openvpn_group",
"upgrade.current_version": "2.11.3",
"upgrade.initial_version": "2.11.3",
"vpn.client.basic": "false",
"vpn.client.cipher": "AES-256-CBC",
"vpn.client.config_text": "",
"vpn.client.routing.inter_client": "true",
"vpn.client.routing.reroute_dns": "true",
"vpn.client.routing.reroute_gw": "false",
"vpn.client.routing.superuser_c2c_access": "false",
"vpn.daemon.0.client.netmask_bits": "26",
"vpn.daemon.0.client.network": "10.0.1.128",
"vpn.daemon.0.listen.ip_address": "all",
"vpn.daemon.0.listen.port": "443",
"vpn.daemon.0.listen.protocol": "tcp",
"vpn.daemon.0.server.ip_address": "all",
"vpn.general.osi_layer": "2",
"vpn.server.cipher": "AES-256-CBC",
"vpn.server.config_text": "",
"vpn.server.daemon.enable": "true",
"vpn.server.daemon.ovpndco": "false",
"vpn.server.daemon.protocols": "both",
"vpn.server.daemon.tcp.n_daemons": "4",
"vpn.server.daemon.tcp.port": "443",
"vpn.server.daemon.udp.n_daemons": "4",
"vpn.server.daemon.udp.port": "1194",
"vpn.server.data_ciphers": "",
"vpn.server.dhcp_option.disable_nbt": "false",
"vpn.server.dhcp_option.nbt": "1",
"vpn.server.duplicate_cn": "false",
"vpn.server.enable_cipher_fallback": "false",
"vpn.server.foreign_bridge": "",
"vpn.server.group_pool.0": "10.0.1.0/24",
"vpn.server.port_share.enable": "true",
"vpn.server.port_share.ip_address": "1.2.3.4",
"vpn.server.port_share.port": "1234",
"vpn.server.port_share.service": "admin+client",
"vpn.server.routing.gateway_access": "false",
"vpn.server.routing.private_access": "nat",
"vpn.server.routing.private_network.0": "10.0.1.0/24",
"vpn.server.tls_cc_security": "tls-auth",
"vpn.server.tls_version_min": "1.2",
"vpn.tls_refresh.interval": "60",
"xmlrpc.relay_level": "1"
}